白名单管理
<p class="shortdesc">匹配白名单的审计记录不会触发告警。您可以根据实际情况添加白名单来减少误报。本文介绍如何添加和启用白名单。</p>
<section class="section"><h2 class="doc-tairway">新增白名单</h2>
<p class="p"><strong class="ph b">前提条件</strong></p>
<p class="p">您已创建数据库审计实例。</p>
<p class="p">您已添加资产。</p>
<p class="p"><strong class="ph b">操作步骤</strong></p>
<ol class="ol" id="whitelist__ol_xmf_pk2_psb">
<li class="li">
<span class="ph cmd">登录<a class="xref" href="https://www.ocftcloud.com/console/db-audit" target="_blank" rel="external noopener">数据库审计控制台</a>,进入<span class="keyword wintitle">实例列表</span>页面。</span>
</li>
<li class="li">
<span class="ph cmd">单击目标实例<span class="ph uicontrol">操作</span>列的<span class="ph uicontrol">管理</span>,进入数据库审计控制台。</span>
<div class="itemgroup info">
<img class="image" id="whitelist__d23e47" src="https://obs-cn-shanghai.ocftcloud.com/pacloud/20222103110011-12277d5f94d4.png" width="700">
</div>
</li>
<li class="li"> 在菜单栏选择<span class="ph menucascade"><span class="ph uicontrol">规则配置</span><abbr> > </abbr><span class="ph uicontrol">安全规则</span></span>,进入<span class="keyword wintitle">安全规则</span>页面。 </li>
<li class="li">
选择<span class="keyword wintitle">白名单管理</span>页签,单击<span class="ph uicontrol">新增</span>进入<span class="keyword wintitle">新增白名单</span>页面,编辑相关参数,单击<span class="ph uicontrol">保存</span>。
<img class="image" id="whitelist__image_qdr_tf2_psb" src="https://obs-cn-shanghai.ocftcloud.com/pacloud/20222103110011-1a2f87a89f00.png" width="700"></li>
</ol>
<p class="p"><strong class="ph b">后续操作</strong></p>
<p class="p">添加白名单后,需在对应的规则上启用,该白名单才会生效。详细操作请参见下一节。</p>
</section>
<section class="section" id="whitelist__section_g3g_rk2_psb"><h2 class="doc-tairway">启用白名单</h2>
<p class="p"><strong class="ph b">前提条件</strong></p>
<p class="p">您已创建数据库审计实例。</p>
<p class="p">您已添加资产。</p>
<div class="p"><strong class="ph b">操作步骤</strong><ol class="ol">
<li class="li">
<span class="ph cmd">登录<a class="xref" href="https://www.ocftcloud.com/console/db-audit" target="_blank" rel="external noopener">数据库审计控制台</a>,进入<span class="keyword wintitle">实例列表</span>页面。</span>
</li>
<li class="li">
<span class="ph cmd">单击目标实例<span class="ph uicontrol">操作</span>列的<span class="ph uicontrol">管理</span>,进入数据库审计控制台。</span>
<div class="itemgroup info">
<img class="image" id="whitelist__d23e47" src="https://obs-cn-shanghai.ocftcloud.com/pacloud/20222103110011-12277d5f94d4.png" width="700">
</div>
</li>
<li class="li"> 在菜单栏选择<span class="ph menucascade"><span class="ph uicontrol">规则配置</span><abbr> > </abbr><span class="ph uicontrol">安全规则</span></span>,进入<span class="keyword wintitle">安全规则</span>页面。 </li>
<li class="li">选择<span class="keyword wintitle">规则使用情况</span>页签,单击数据库名称链接。<img class="image" id="whitelist__image_w2z_fl2_psb" src="https://obs-cn-shanghai.ocftcloud.com/pacloud/20222103110011-15500e0d94c0.png" width="700"></li>
<li class="li">进入资产规则管理页面,选择<span class="keyword wintitle">安全规则</span>页签,单击<span class="ph uicontrol">白名单数量</span>列中的数字。<img class="image" id="whitelist__image_ebd_3l2_psb" src="https://obs-cn-shanghai.ocftcloud.com/pacloud/20222103110011-142246c79268.png" width="700"></li>
<li class="li">在弹出的对话框中将<span class="ph uicontrol">状态</span>设置为<span class="ph uicontrol">启用</span>,即可启用对应的白名单。<img class="image" id="whitelist__image_wqt_jl2_psb" src="https://obs-cn-shanghai.ocftcloud.com/pacloud/20222103110011-17bc2e9c904d.png" width="600"></li>
</ol></div>
<div class="p">
<div class="note important note_important" id="whitelist__note_rsg_pl2_psb"><span class="note__title">重要:</span> 删除白名单时,需要在启用该白名单的所有规则下禁用该白名单,才能删除。</div>
</div>
</section>
提交成功!非常感谢您的反馈,我们会继续努力做到更好!